Fedora Core 5 : libXfont-1.2.8-1.fc5 (2007-422)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2007-422.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(25013);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2007-422");

  script_name(english:"Fedora Core 5 : libXfont-1.2.8-1.fc5 (2007-422)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Fri Apr 6 2007 Adam Jackson <ajax at redhat.com> 1.2.8-1

    - libXfont 1.2.8.

    - Wed Jan 17 2007 Kristian Hagsberg <krh at redhat.com>
      1.2.6-2

    - Add built-in-scalable.patch to prevent crash when
      trying to scale built-in bitmap fonts.

  - Fri Jan 5 2007 Adam Jackson <ajax at redhat.com> 1.2.6-1

    - Update to 1.2.6

    - Fri Dec 1 2006 Adam Jackson <ajax at redhat.com>
      1.2.5-1

    - Update to 1.2.5 from upstream. Drops CID font support.

    - Sat Nov 25 2006 Adam Jackson <ajax at redhat.com>
      1.2.3-4.fc7

    - Revert the namespace whatsit until xfs is sorted out.

    - Mon Nov 20 2006 Adam Jackson <ajax at redhat.com>
      1.2.3-3.fc7

    - libXdmcp-1.0.2-namespace-pollution.patch: One more
      collision avoider.

    - Mon Nov 20 2006 Adam Jackson <ajax at redhat.com>
      1.2.3-2.fc7

    - libXfont-1.2.3-namespace-pollution.patch: Hide some
      symbols from the dynamic linker to avoid colliding
      with other libs.

  - Mon Nov 20 2006 Adam Jackson <ajax at redhat.com>
    1.2.3-1.fc6

    - Update to 1.2.3

    - Tue Sep 12 2006 Adam Jackson <ajackson at redhat.com>
      1.2.2-1.fc6

    - Update to 1.2.2, misc security fixes

    - Wed Jul 12 2006 Jesse Keating <jkeating at redhat.com>
      1.2.0-1.1.fc6

    - rebuild

    - Mon Jul 10 2006 Mike A. Harris <mharris at redhat.com>
      1.2.0-1.fc6

    - Update to 1.2.0

    - Fri Jun 9 2006 Mike A. Harris <mharris at redhat.com>
      1.1.0-3

    - Remove package ownership of mandir/libdir/etc.

    - Mon Jun 5 2006 Mike A. Harris <mharris at redhat.com>
      1.1.0-2

    - Added 'Requires: libfontenc-devel' for (#185778)

    - Sat Apr 1 2006 Adam Jackson <ajackson at redhat.com>
      1.1.0-1

    - Update to 1.1.0 for crash fix and new headers

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2007-April/001647.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?059f957a"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected libXfont, libXfont-debuginfo and / or
libXfont-devel packages."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libXfont");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libXfont-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libXfont-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:5");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/04/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/04/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 5.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC5", reference:"libXfont-1.2.8-1.fc5")) flag++;
if (rpm_check(release:"FC5", reference:"libXfont-debuginfo-1.2.8-1.fc5")) flag++;
if (rpm_check(release:"FC5", reference:"libXfont-devel-1.2.8-1.fc5")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libXfont / libXfont-debuginfo / libXfont-devel");
}